Professional Documents
Culture Documents
Witch access list entry checks for an ACK within a packet header?
A access-list 49 permit ip any any eq 21 tcp-ack
B access-list 49 permit tcp any any eq 21 tcp-ack
C access-list 149 permit tcp any any eq 21 established
D access-list 49 permit tcp any any eq 21 established
Answer: C
===============================================================
==================
Question 02:
Which option is one way to mitigate symmetric routing on an active/active firewall setup for TCP-
based connections?
A performing packet captures
B disabling asr-group commands on interfaces that are likely to receive asymetric traffic
C replacing them with redundant routers and allowing load balancing
D disabling stateful TCP checks
Answer: D
===============================================================
==================
Question 03:
A network engineer executes the show ip cache flow command. Witch two types of information are
displayed in the report that is generated? Choose two:
A top talkers
B flow export statistics
C flow sample for specific protocols
D MLS flow traffic
E IP packet distribution
Answer: C & E
===============================================================
==================
Question 04:
Which DHCP option provides a TFTP server that Cisco phones can use to download a configuration?
A DHCP Option 66
B DHCP Option 68
C DHCP Option 82
D DHCP Option 57
As: A
===============================================================
==================
Question 05:
Drag and Drop
Authentication (two sentences) >>>
supports a local database for device access
supports encryption
Accounting (two sentences) >>>
-not supported with local AAA
-verifies network usage
Authorization (two sentences) >>>
specifies a users specific access privileges
enforces time periods during which a user can access the device
===============================================================
==================
Question 06:
-drag and drop
CHAP (two sentences) >>>
Generates a unique string for each transaction
supports mid-session re-authentication
PAP (two sentences) >>>
provides minimal security
requires a username and password only
===============================================================
==================
Question 07:
there is a choice on flow..a customer what ..i dontremind well
A.PMTUD
B.MTU
C IP MTU
===============================================================
==================
Question 08
Radius >>>
uses udp port 1812 (for authentication / authorization). It encrypts only the password in the access-
request packet, from the client to the server. The remainder of